Dockerfile

FROM php:8.3-cli-alpine

LABEL maintainer="Security Linter Team"
LABEL description="PHP/Laravel Security Linter - Static security analysis tool"
LABEL version="0.0.1"

# Build arguments
ARG PHP_MEMORY_LIMIT=1024M

# Install composer
COPY --from=composer:latest /usr/bin/composer /usr/bin/composer

# Set working directory
WORKDIR /app/security-linter

# Copy composer files first for better caching
COPY composer.json composer.lock* ./

# Install dependencies
RUN composer install --no-dev --optimize-autoloader --no-interaction --no-progress

# Copy source code
COPY src/ ./src/
COPY bin/ ./bin/
COPY docs/ ./docs/

# Make binary executable, set memory limit, and create symlink
RUN chmod +x bin/security-lint \
    && echo "memory_limit=${PHP_MEMORY_LIMIT}" > /usr/local/etc/php/conf.d/memory.ini \
    && ln -s /app/security-linter/bin/security-lint /usr/local/bin/security-lint

# Default working directory for target code
WORKDIR /target

# Set entrypoint
ENTRYPOINT ["security-lint"]

# Default command (show help)
CMD ["--help"]
Initial commit: PHP/Laravel Security Linter v1.0.0 A static security analysis tool for PHP and Laravel applications with recursive taint analysis capabilities. Features: - Comprehensive vulnerability detection (XSS, SQL Injection, Command Injection, Path Traversal, CSRF, Authentication issues) - Recursive taint analysis across function calls - Blade template analysis with context-aware XSS detection - Smart escape detection and escape bypass detection - Syntax highlighting in terminal output - Multi-language support (Japanese/English) - Docker support for easy deployment - Multiple output formats (text, JSON, HTML, SARIF, Markdown) - CI/CD integration ready (GitHub Actions, GitLab CI) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2026-01-31 15:18:53 +09:00			`FROM php:8.3-cli-alpine`

			`LABEL maintainer="Security Linter Team"`
			`LABEL description="PHP/Laravel Security Linter - Static security analysis tool"`
Add PHP memory limit documentation for Docker builds - Document --build-arg PHP_MEMORY_LIMIT option for large projects - Default is 1024M, can increase to 2048M or more as needed - Update Dockerfile version label to 0.0.1 - Add notes in both English and Japanese sections Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2026-02-02 16:04:56 +09:00			`LABEL version="0.0.1"`
Initial commit: PHP/Laravel Security Linter v1.0.0 A static security analysis tool for PHP and Laravel applications with recursive taint analysis capabilities. Features: - Comprehensive vulnerability detection (XSS, SQL Injection, Command Injection, Path Traversal, CSRF, Authentication issues) - Recursive taint analysis across function calls - Blade template analysis with context-aware XSS detection - Smart escape detection and escape bypass detection - Syntax highlighting in terminal output - Multi-language support (Japanese/English) - Docker support for easy deployment - Multiple output formats (text, JSON, HTML, SARIF, Markdown) - CI/CD integration ready (GitHub Actions, GitLab CI) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2026-01-31 15:18:53 +09:00
			`# Build arguments`
			`ARG PHP_MEMORY_LIMIT=1024M`

			`# Install composer`
			`COPY --from=composer:latest /usr/bin/composer /usr/bin/composer`

			`# Set working directory`
			`WORKDIR /app/security-linter`

			`# Copy composer files first for better caching`
			`COPY composer.json composer.lock* ./`

			`# Install dependencies`
			`RUN composer install --no-dev --optimize-autoloader --no-interaction --no-progress`

			`# Copy source code`
			`COPY src/ ./src/`
			`COPY bin/ ./bin/`
			`COPY docs/ ./docs/`

			`# Make binary executable, set memory limit, and create symlink`
			`RUN chmod +x bin/security-lint \`
			`&& echo "memory_limit=${PHP_MEMORY_LIMIT}" > /usr/local/etc/php/conf.d/memory.ini \`
			`&& ln -s /app/security-linter/bin/security-lint /usr/local/bin/security-lint`

			`# Default working directory for target code`
			`WORKDIR /target`

			`# Set entrypoint`
			`ENTRYPOINT ["security-lint"]`

			`# Default command (show help)`
			`CMD ["--help"]`